Техническая информация
- %TEMP%\~nsu.tmp\Au_.exe _?=<Текущая директория>\
- <SYSTEM32>\taskkill.exe /F /im
- <SYSTEM32>\taskkill.exe /F /im chengziie.exe
- %TEMP%\nsn5.tmp\uub.dll
- %TEMP%\nsn5.tmp\services.dll
- %TEMP%\nsr4.tmp
- %TEMP%\nsw2.tmp
- %TEMP%\~nsu.tmp\Au_.exe
- DNS ASK to####.chengziie.com
- 'to####.chengziie.com':8731
- ClassName: '' WindowName: ''
- ClassName: 'Shell_TrayWnd' WindowName: ''